Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 16, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
216621 4.3 警告 SiliSoftware - phpThumb のデフォルト設定におけるサーバサイドのリクエストフォージェリの脆弱性 CWE-Other
その他 		CVE-2013-6919 2015-01-6 13:55 2013-11-30 Show GitHub Exploit DB Packet Storm
216622 5 警告 Facebook - Facebook HipHop Virtual Machine の hphp/runtime/ext/ext_hash.cpp の HashContext クラスにおける重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2014-6229 2015-01-6 13:50 2014-09-19 Show GitHub Exploit DB Packet Storm
216623 7.5 危険 Facebook - Facebook HipHop Virtual Machine の hphp/runtime/base/zend-string.cpp の string_chunk_split 関数における整数オーバーフローの脆弱性 CWE-189
数値処理の問題 		CVE-2014-6228 2015-01-6 13:49 2014-08-25 Show GitHub Exploit DB Packet Storm
216624 5 警告 Facebook - Facebook HipHop Virtual Machine の hphp/runtime/ext/mcrypt/ext_mcrypt.cpp の mcrypt_create_iv 関数における暗号保護メカニズムを破られる脆弱性 CWE-310
暗号の問題 		CVE-2014-5386 2015-01-6 13:49 2014-08-16 Show GitHub Exploit DB Packet Storm
216625 5 警告 Facebook - Facebook HipHop Virtual Machine におけるアクセス制限を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2014-2209 2015-01-6 13:48 2014-05-2 Show GitHub Exploit DB Packet Storm
216626 7.5 危険 Facebook - Facebook HipHop Virtual Machine の hphp/util/light-process.cpp の LightProcess プロトコルの実装における CRLF インジェクションの脆弱性 CWE-94
コード・インジェクション 		CVE-2014-2208 2015-01-6 13:48 2014-03-3 Show GitHub Exploit DB Packet Storm
216627 4 警告 Open-Xchange - Open-Xchange AppSuite の backend の Birthday ウィジェットにおける重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2013-6241 2015-01-6 13:47 2013-10-21 Show GitHub Exploit DB Packet Storm
216628 7.5 危険 Pydio - Pydio の Zoho プラグインの plugins/editor.zoho/agent/save_zoho.php における任意のコードを実行される脆弱性 CWE-Other
その他 		CVE-2013-6227 2015-01-6 11:57 2013-10-14 Show GitHub Exploit DB Packet Storm
216629 5 警告 Softaculous - Softaculous Webuzo のログイン機能におけるユーザ名を列挙される脆弱性 CWE-200
情報漏えい 		CVE-2013-6043 2015-01-6 11:19 2013-10-3 Show GitHub Exploit DB Packet Storm
216630 7.5 危険 Softaculous - Softaculous Webuzo の index.php における任意のコマンドを実行される脆弱性 CWE-78
OSコマンド・インジェクション 		CVE-2013-6041 2015-01-6 11:16 2013-10-3 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 16, 2026, 4:13 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
651 8.8 HIGH
Network 		- - OpenClaw before 2026.5.27 contains an arbitrary code execution vulnerability in skill install flows where workspace .env files can override the Homebrew executable selection. Attackers with access to… CWE-426
 Untrusted Search Path 		CVE-2026-53819 2026-06-13 00:58 2026-06-12 Show GitHub Exploit DB Packet Storm
652 8.8 HIGH
Network 		microsoft sharepoint_server Deserialization of untrusted data in Microsoft Office SharePoint allows an authorized attacker to elevate privileges over a network. CWE-502
 Deserialization of Untrusted Data 		CVE-2026-45484 2026-06-13 00:57 2026-06-10 Show GitHub Exploit DB Packet Storm
653 3.5 LOW
Network 		- - The Secure Copy Content Protection and Content Locking WordPress plugin before 5.1.5 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform… - CVE-2026-9269 2026-06-13 00:57 2026-06-12 Show GitHub Exploit DB Packet Storm
654 9.8 CRITICAL
Network 		- - ClipBucket v5 is an open source video sharing platform. Prior to version 5.5.3 - #140, ClipBucket's Remote Play feature allows any authenticated user to add a video by importing an external URL as th… CWE-78
OS Command  		CVE-2026-42846 2026-06-13 00:56 2026-06-12 Show GitHub Exploit DB Packet Storm
655 9.8 CRITICAL
Network 		- - ClipBucket v5 is an open source video sharing platform. Prior to version 5.5.3 - #129, the actions/progress_video.php endpoint is vulnerable to blind SQL injection. Any unauthenticated user can explo… CWE-89
SQL Injection 		CVE-2026-45060 2026-06-13 00:56 2026-06-12 Show GitHub Exploit DB Packet Storm
656 4.3 MEDIUM
Network 		- - ClipBucket v5 is an open source video sharing platform. Prior to version 5.5.3 - #141, ClipBucket v5 contains an improper neutralization of SQL wildcard characters in the subtitle editing endpoint. A… CWE-155
CWE-943
CVE-2026-49482 2026-06-13 00:56 2026-06-12 Show GitHub Exploit DB Packet Storm
657 - - - Quest Bot is an opensource Discord Bot. Prior to version 1.1.6, the purge and slowmode commands check only guild-level permissions on the invoking member. They do not check the member’s effective per… CWE-863
 Incorrect Authorization 		CVE-2026-47195 2026-06-13 00:56 2026-06-12 Show GitHub Exploit DB Packet Storm
658 - - - Quest Bot is an opensource Discord Bot. Prior to version 1.1.6, the latest release suppresses mentions when creating, unbanning, unwarning, kicking, muting, and unmuting, but stored warning reasons a… CWE-116
 Improper Encoding or Escaping of Output 		CVE-2026-48485 2026-06-13 00:56 2026-06-12 Show GitHub Exploit DB Packet Storm
659 - - - Quest Bot is an opensource Discord Bot. Prior to version 1.1.8, any user who can access the ticket panel can repeatedly create new ticket channels. The latest release still creates a new database tic… CWE-770
 Allocation of Resources Without Limits or Throttling 		CVE-2026-49347 2026-06-13 00:56 2026-06-12 Show GitHub Exploit DB Packet Storm
660 - - - Frappe is a full-stack web application framework. Prior to versions 15.106.0 and 16.16.0, there is a possible SQL Injection via get_blog_list. This issue has been patched in versions 15.106.0 and 16.… CWE-89
SQL Injection 		CVE-2026-41581 2026-06-13 00:56 2026-06-13 Show GitHub Exploit DB Packet Storm